hashlookup / hashlookup-forensic-analyserLinks
Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https://circl.lu/services/hashlookup/
☆126Updated last year
Alternatives and similar repositories for hashlookup-forensic-analyser
Users that are interested in hashlookup-forensic-analyser are comparing it to the libraries listed below
Sorting:
- Digital Forensics Artifacts Knowledge Base☆82Updated last year
- Rip Raw is a small tool to analyse the memory of compromised Linux systems.☆131Updated 3 years ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆146Updated last year
- ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…☆78Updated 2 weeks ago
- BlackBerry Threat Research & Intelligence☆98Updated last year
- Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, ASN, DNS, WhoIs, Shodan InternetDB and Threat Indi…☆107Updated 8 months ago
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆63Updated 2 years ago
- A toolkit for the post-mortem examination of Docker containers from forensic HDD copies☆103Updated last year
- A pySigma wrapper and langchain toolkit for automatic rule creation/translation☆81Updated last month
- Collection of Jupyter Notebooks by @fr0gger_☆171Updated last week
- This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports☆73Updated 7 months ago
- The Threat Actor Profile Guide for CTI Analysts☆107Updated last year
- FJTA (Forensic Journal Timeline Analyzer) is a tool that analyzes Linux filesystem (ext4, XFS) journals (not systemd-journald logs), gene…☆75Updated last week
- ☆92Updated last month
- Python library for threat intelligence☆87Updated 5 months ago
- Harvest Linux forensic data for operational triage of an event.☆51Updated last year
- This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.☆109Updated last year
- Repository of public reference frameworks for the DFIR community.☆116Updated last year
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆122Updated last year
- A collection of tips for using MISP.☆74Updated 6 months ago
- LOKI2 - Simple IOC and YARA Scanner☆94Updated 11 months ago
- Convert Sigma rules to SIEM queries, directly in your browser.☆89Updated last week
- ☆28Updated 4 years ago
- Cisco Orbital - Osquery queries by Talos☆134Updated 10 months ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆44Updated last year
- Forensic Artifact Collection Tool Matrix☆85Updated 7 months ago
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆112Updated 7 months ago
- Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…☆42Updated last month
- A community event for security researchers to share their favorite notebooks☆107Updated last year
- A python script developed to process Windows memory images based on triage type.☆262Updated last year